Yubikey 5 Nfc Firmware@* Security Vulnerabilities and Issues — Yubikey 5 Nfc Firmware@* CVE List

Lucene search

YubicoYubikey 5 Nfc Firmware*

3 matches found

CVE•added 2020/07/09 7:15 p.m.•108 views

CVE-2020-15001

An information leak was discovered on Yubico YubiKey 5 NFC devices 5.0.0 to 5.2.6 and 5.3.0 to 5.3.1. The OTP application allows a user to set optional access codes on OTP slots. This access code is intended to prevent unauthorized changes to OTP configurations. The access code is not checked when ...

5.3CVSS5.1AI score0.00084EPSS

CVE•added 2024/09/03 8:15 p.m.•59 views

CVE-2024-45678

Yubico YubiKey 5 Series devices with firmware before 5.7.0 and YubiHSM 2 devices with firmware before 2.4.0 allow an ECDSA secret-key extraction attack (that requires physical access and expensive equipment) in which an electromagnetic side channel is present because of a non-constant-time modular ...

4.2CVSS7.1AI score0.00034EPSS

CVE•added 2020/07/09 6:15 p.m.•38 views

CVE-2020-15000

A PIN management problem was discovered on Yubico YubiKey 5 devices 5.2.0 to 5.2.6. OpenPGP has three passwords: Admin PIN, Reset Code, and User PIN. The Reset Code is used to reset the User PIN, but it is disabled by default. A flaw in the implementation of OpenPGP sets the Reset Code to a known v...

5.9CVSS5.8AI score0.00227EPSS